Date: Fri, 18 May 2001 22:18:54 +0700 (ICT) From: Olivier Nicole <Olivier.Nicole@ait.ac.th> To: huacheng@public.guangzhou.gd.cn Cc: freebsd-security@FreeBSD.ORG Subject: Re: AUTH and sendmail Message-ID: <200105181518.WAA12362@bazooka.cs.ait.ac.th> In-Reply-To: <002c01c0dfa8$c6ae8600$9201a8c0@home.net> (huacheng@public.guangzhou.gd.cn)
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Funny enough I worked on that last week and finished buddling a web age for my users today (http://www.cs.ait.ac.th/laboratory/email/) I use poprelayd, from http://poprelay.sourceforge.net (with some little modif) that is a perl script that reads /var/log/maillog (it goes fine with the newsyslog) and extract pop/imap authetication information. The it adds a temporary open relay for the client IP in a table, for 15 minutes, as mail prgram typically check email every 10 minutes, relay is open as long as the mail program is running. There could be a 15 minutes window where someone else could connect using the same IP and could use your email server as an open relay... risk is very unlikely. Advantage: it working with plain pop or imap, so basically any client. Olivier > we found use 4.3freebsd sendmail default setup is a safer choice for our > mailserver. But we have many staff outside want to access our mailserver by > dialup, but with default sendmail conf they can't relay the mail they sent > when they stay outside. (use pop3 receive mail not problem), now we > advise staff outsite use our mailserver receive mail but use local ISP's > mailserver send mail. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200105181518.WAA12362>